$ rpki-client -vvf rpki.apnic.net/member_repository/A91B58FF/1204AB3C3C3D11EBB9381F71C4F9AE02/JEQ66D7flq8ZQtv_DtT4wX3WeW8.mft File: JEQ66D7flq8ZQtv_DtT4wX3WeW8.mft (raw, json) Hash identifier: XYdP29UyTunJvGSsB7D5gtQNZnGY0Hqcvig/SziMe4c= Subject key identifier: 1A:24:06:F9:D4:CE:09:3B:D0:8C:36:EA:C1:23:43:B0:99:9A:82:75 Authority key identifier: 24:44:3A:E8:3E:DF:96:AF:19:42:DB:FF:0E:D4:F8:C1:7D:D6:79:6F Certificate issuer: /CN=A91B58FF/serialNumber=24443AE83EDF96AF1942DBFF0ED4F8C17DD6796F Certificate serial: 071D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JEQ66D7flq8ZQtv_DtT4wX3WeW8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B58FF/1204AB3C3C3D11EBB9381F71C4F9AE02/JEQ66D7flq8ZQtv_DtT4wX3WeW8.mft Manifest number: 0703 Signing time: Wed 02 Apr 2025 21:57:22 +0000 Manifest this update: Wed 02 Apr 2025 21:57:22 +0000 Manifest next update: Wed 09 Apr 2025 21:57:22 +0000 Files and hashes: 1: JEQ66D7flq8ZQtv_DtT4wX3WeW8.crl (hash: CCjw+yHbn2YqxP4PdmtmbcAMqX1pC2KW1QOx/Q99N+o=) 2: A46317803F5211EBB1B1701FC4F9AE02.roa (hash: FMNZ9SsPDMaBsxCn7D6dqqqWjFTqP/F+Fz8blXpHCbk=) 3: C74B01CA3C3E11EBA08CAC72C4F9AE02.roa (hash: IWEwNMzAHK/ef+4K/t2BfxtQJgKm9A+qNvlUUfJjqyg=) 4: A50523F43F5211EBB1B1701FC4F9AE02.roa (hash: MXwTZ0HTMZgGNdBLgLlhrgI3zl9svxesevJasfZECFs=) 5: 65DA620C798111EBBD22251CC4F9AE02.roa (hash: /RISfiBtXbfKLP2ghs+Yyw4wfbS03k7nxtHus8aqX1g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B58FF/1204AB3C3C3D11EBB9381F71C4F9AE02/JEQ66D7flq8ZQtv_DtT4wX3WeW8.crl rsync://rpki.apnic.net/member_repository/A91B58FF/1204AB3C3C3D11EBB9381F71C4F9AE02/JEQ66D7flq8ZQtv_DtT4wX3WeW8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JEQ66D7flq8ZQtv_DtT4wX3WeW8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 21:57:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1821 (0x71d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B58FF Validity Not Before: Apr 2 21:57:22 2025 GMT Not After : Apr 9 21:57:22 2025 GMT Subject: CN=67edb2c2-85c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:38:01:08:ee:f5:06:98:d9:60:62:00:66:26: 3a:28:1a:b5:5b:fa:ab:97:2e:d8:ac:99:95:98:fa: 83:f6:5e:b6:3f:08:55:7b:c4:b2:2c:46:36:ad:c3: 11:c4:5a:47:1e:ca:29:04:d1:68:1f:c7:d0:df:2d: 44:e1:8f:7b:03:62:14:70:fe:fc:4a:19:b9:b3:c0: 43:44:28:49:11:04:54:bc:1b:1e:79:d5:6c:9a:cf: e6:3d:3f:d0:b6:41:9b:ed:f8:c1:25:b4:8b:c5:3d: bf:26:09:da:6b:72:e0:b8:f8:7c:89:e0:e6:47:6e: d2:df:19:5e:10:ce:ca:11:7c:0a:4b:ee:26:62:1c: b9:31:2a:cf:74:5b:a2:9b:00:e9:d1:f3:39:61:37: 7e:19:48:04:63:a5:9e:73:13:de:4e:d9:d7:cf:e1: 29:90:6e:35:ca:23:7c:d8:92:28:38:9a:0e:39:e7: b7:90:16:ca:c8:a7:a4:12:8f:4d:0a:b4:94:13:1d: 51:bf:b6:e3:be:0c:b0:1a:8f:10:64:3d:4e:b6:14: cf:a0:3e:28:c7:34:c4:37:32:14:18:60:0e:ad:06: 28:b4:01:f0:0f:11:c5:0e:3c:40:61:46:72:ee:f3: bc:c9:8a:8f:08:59:73:79:e4:aa:d2:9a:84:26:26: 89:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:24:06:F9:D4:CE:09:3B:D0:8C:36:EA:C1:23:43:B0:99:9A:82:75 X509v3 Authority Key Identifier: keyid:24:44:3A:E8:3E:DF:96:AF:19:42:DB:FF:0E:D4:F8:C1:7D:D6:79:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B58FF/1204AB3C3C3D11EBB9381F71C4F9AE02/JEQ66D7flq8ZQtv_DtT4wX3WeW8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JEQ66D7flq8ZQtv_DtT4wX3WeW8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B58FF/1204AB3C3C3D11EBB9381F71C4F9AE02/JEQ66D7flq8ZQtv_DtT4wX3WeW8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:80:71:54:c4:b5:2e:fd:8b:af:53:07:5c:2e:10:4a:15:f1: b4:6a:07:5a:43:7a:07:0a:d8:7b:56:bd:fc:e8:cf:57:ca:4f: 53:d8:17:5c:9a:1d:11:84:f3:3b:20:76:56:79:75:46:04:6b: 94:6b:f7:65:30:6a:f0:a2:5f:9a:37:73:82:b1:83:68:8d:f4: 03:67:2c:d7:c1:fa:3a:5e:57:ff:22:9a:f9:b4:e6:9e:93:35: 9e:86:17:03:52:6b:5d:a0:e7:79:29:88:a5:04:2d:fa:c6:ff: f3:a3:e4:ae:02:73:1c:06:02:04:95:9c:2b:c8:75:96:fc:68: ff:7f:64:b3:aa:44:65:a0:5c:af:61:52:ff:f4:bb:87:69:ab: 9b:fe:9a:7f:bd:0c:e8:0c:8a:b4:a1:1e:5b:16:1b:e9:60:02: ad:cd:f1:11:65:7f:71:8c:ca:8c:a9:41:31:79:c0:df:99:e3: b8:a3:aa:9f:4a:b3:ae:4f:29:a6:9f:1b:65:6c:f2:c9:d7:b1: 37:cf:5f:2b:61:c2:c3:18:09:ff:01:db:b3:5e:bc:75:d5:af: f4:4d:07:40:4a:3f:47:a8:4a:fc:26:a6:a9:c1:fd:f7:8f:11: cc:39:70:58:77:c7:47:d3:71:21:99:3a:df:ac:fc:48:d5:9f: 9f:6b:3c:f4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBx0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjU4RkYxMTAvBgNVBAUTKDI0NDQzQUU4M0VERjk2QUYxOTQyREJGRjBFRDRGOEMx N0RENjc5NkYwHhcNMjUwNDAyMjE1NzIyWhcNMjUwNDA5MjE1NzIyWjAYMRYwFAYD VQQDEw02N2VkYjJjMi04NWMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqDgBCO71BpjZYGIAZiY6KBq1W/qrly7YrJmVmPqD9l62PwhVe8SyLEY2rcMR xFpHHsopBNFoH8fQ3y1E4Y97A2IUcP78Shm5s8BDRChJEQRUvBseedVsms/mPT/Q tkGb7fjBJbSLxT2/Jgnaa3LguPh8ieDmR27S3xleEM7KEXwKS+4mYhy5MSrPdFui mwDp0fM5YTd+GUgEY6WecxPeTtnXz+EpkG41yiN82JIoOJoOOee3kBbKyKekEo9N CrSUEx1Rv7bjvgywGo8QZD1OthTPoD4oxzTENzIUGGAOrQYotAHwDxHFDjxAYUZy 7vO8yYqPCFlzeeSq0pqEJiaJ5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBokBvnU zgk70Iw26sEjQ7CZmoJ1MB8GA1UdIwQYMBaAFCREOug+35avGULb/w7U+MF91nlv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNThGRi8xMjA0QUIzQzND M0QxMUVCQjkzODFGNzFDNEY5QUUwMi9KRVE2NkQ3ZmxxOFpRdHZfRHRUNHdYM1dl VzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pFUTY2RDdmbHE4WlF0dl9EdFQ0d1gzV2VXOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NThGRi8xMjA0QUIzQzNDM0QxMUVCQjkzODFGNzFDNEY5QUUwMi9KRVE2NkQ3Zmxx OFpRdHZfRHRUNHdYM1dlVzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCcgHFUxLUu/YuvUwdcLhBKFfG0agdaQ3oHCth7Vr386M9Xyk9T2Bdc mh0RhPM7IHZWeXVGBGuUa/dlMGrwol+aN3OCsYNojfQDZyzXwfo6Xlf/Ipr5tOae kzWehhcDUmtdoOd5KYilBC36xv/zo+SuAnMcBgIElZwryHWW/Gj/f2SzqkRloFyv YVL/9LuHaaub/pp/vQzoDIq0oR5bFhvpYAKtzfERZX9xjMqMqUExecDfmeO4o6qf SrOuTymmnxtlbPLJ17E3z18rYcLDGAn/AduzXrx11a/0TQdASj9HqEr8Jqapwf33 jxHMOXBYd8dH03EhmTrfrPxI1Z+fazz0 -----END CERTIFICATE-----Generated at Fri Apr 4 22:24:43 2025 by rpki-client